Loading…
August 19-21 - Co-Located Events
August 21-23 - Conference
Hilton San Diego Bayfront - San Diego, CA
More information for Open Source Summit + Embedded Linux Conference North America 2019

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Cloud Infrastructure & Automation [clear filter]
Tuesday, August 20
 

2:00pm

Workshop: Instrumenting Cloud Native Applications (Additional Fee; Pre-registration Required)
The goal of this workshop is to familiarize application and site reliability engineers with the benefits that modern observability tools provide to the builders and curators of cloud native applications.

In this workshop, attendees will configure a RBAC-enabled vanilla K8S cluster in GKE, deploy prometheus and jaeger in support of observing and monitoring a distributed microservice application, instrument that application by introducing libraries and tooling to support capturing business metrics as well. Each attendee will configure, update, and deploy a cloud native application.

Please to your current Open Source Summit Registration. There will be a $50.00 registration fee.

Speakers
avatar for Kevin Crawley

Kevin Crawley

Developer Advocate, Instana
Kevin has been distinguished by by his peers as a Docker Captain for his work with the community and the successful implementation of Docker in production at several organizations over the past 5 years. He’s lead several open space style groups, and recently spoke on using open... Read More →


Tuesday August 20, 2019 2:00pm - 5:00pm
410 B
 
Wednesday, August 21
 

11:30am

Going FaaSter: Cost-Performance Optimizations of Serverless on Kubernetes - Soam Vasani, Platform9
Serverless promises on-demand, optimal performance for a fixed cost. Yet, we see that the current serverless platforms do not always hold up this promise in practice; serverless applications can suffer from platform overhead, unreliable performance, “cold starts”, and more.

In this talk we review optimizations used in popular FaaS platforms, and recent research findings that aim to optimize the trade-off between cost and performance. We will review function reuse, resource pooling, function locality, and predictive scheduling. To illustrate, we will use the open source, Kubernetes-based Fission FaaS platform to demonstrate how you can achieve specific goals around latency, throughput, resource utilization and cost.

Finally, we take a look at the horizon; what are the current performance challenges and opportunities to make FaaS even faster?

Speakers
SV

Soam Vasani 

Software Engineer, Platform9
Soam Vasani created and works on the Fission framework at Platform9 Systems. He's also worked on Platform9's Kubernetes cluster deployment and management product. His past work includes distributed filesystems, a log analysis stack, and infrastructure management products; as well... Read More →


Wednesday August 21, 2019 11:30am - 12:05pm
Sapphire P
  • Session Recorded Yes

11:30am

Helm 3: Navigating To Distant Shores - Bridget Kromhout & Karen Chu, Microsoft
Adjusting your spyglass and looking out over the water, you can see how useful a package manager like Helm is. Perhaps you’ve used it to manage the fractal complexity of packages on your Kubernetes clusters (without losing track of versions stashed in the hold). But Helm 3 is rumored to be different, and you’re ready to get started on this exciting voyage -- as soon as you have some idea of what’s port and what’s starboard!

In this story-fueled session, we’ll take you through differences from the Helm of yore, tips for a successful rollout or upgrade, and opportunities to shape the project’s future. The cloud native waters can be choppy, but a technical deep dive powered by open source tooling will steer you right!

Speakers
avatar for Karen Chu

Karen Chu

Community Manager, Microsoft
Karen Chu is a Community Manager on the Microsoft Azure Container Compute Upstream team with a focus on open source tools such as Helm, CNAB, Brigade, Virtual Kubelet, and more. She is a CNCF Ambassador, meet-up organizer, and conference organizer. She has also worked on and keynoted... Read More →
avatar for Bridget Kromhout

Bridget Kromhout

Principal Program Manager, Microsoft
Bridget Kromhout is a Principal Program Manager at Microsoft, focusing on the open source Kubernetes ecosystem. Her CS degree emphasis was in theory, but she now deals with the concrete (if 'cloud' can be considered tangible). After 15 years as an operations engineer, she traded being... Read More →


Wednesday August 21, 2019 11:30am - 12:05pm
Sapphire L

12:20pm

Moving to a Service Mesh - Mya Pitzeruse, Indeed.com*
Historically, Indeed has used Boxcar (Indeed’s proprietary framework) to build distributed systems. Over the last year, we have been shifting several of our systems to use gRPC over an Envoy service mesh. While product teams are comfortable adopting the service mesh, the first question they often ask is “How does gRPC compare to Boxcar?”

In this presentation, I put the two frameworks head to head and present the results. I show how my team established some common workloads and gathered metrics to better inform other engineers. We learned a lot about how to tune the gRPC Java library and service mesh when performing this analysis. In closing, I present the lessons that we learned performance tuning gRPC services running over a service mesh and how you can leverage this information for your own services.

Speakers
avatar for Mya Pitzeruse

Mya Pitzeruse

Senior Software Engineer, Indeed.com
Mya is a Senior Software Engineer working on service infrastructure at Indeed.com. She is involved in several ongoing initiatives to improve Indeed’s infrastructure and capabilities. One such effort is the migration from Indeed’s proprietary services framework to gRPC.Mya first... Read More →



Wednesday August 21, 2019 12:20pm - 12:55pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

12:20pm

Peeling Layers: A Deep Dive into Kubernetes Networking - Angela Chin, Pivotal*
Kubernetes is a platform that offers great extensibility and flexibility to its users. However, like most distributed systems, managing Kubernetes comes with its own set of challenges. Ensuring resilience in your network configuration helps protect against many common issues, but figuring out the best network setup is confusing at best.

In this talk, Angela will take a deep look at networking in Kubernetes. She will examine the different types of networking an operator and application developer should care about, such as Container Network Interface plugins, types of load balancing, and service meshes. By discussing each of these networking layers, attendees will be equipped to better set up their Kubernetes clusters to protect against downtime and other network problems.

Speakers
avatar for Angela Chin

Angela Chin

Senior Software Engineer, Pivotal
Angela is a software engineer at Pivotal, currently working on all things networking and service mesh related. She has contributed to open source Cloud Foundry, primarily in areas related to networking and routing, and also previously worked on improving the Day 2 experience of Kubernetes... Read More →



Wednesday August 21, 2019 12:20pm - 12:55pm
Sapphire L
  • Session Slides Included Yes

12:20pm

Service Mesh in a Nutshell - Venil Noronha, VMware *
Software applications have evolved from monoliths to microservices in a move towards becoming Cloud Native. The Cloud provides numerous benefits over traditional platforms. However, transitioning towards the Cloud puts a strain on engineers and DevOps as they need to tackle concerns that cut across applications and infrastructure.

Service Mesh technologies solve some key challenges in the Distributed Systems domain. With features like flexible networking, observability, security, etc., they greatly reduce the complexity in building and managing microservices. Istio and Envoy are prominent Open Source Service Mesh solutions that are currently driving the market.

Join Venil Noronha, an Istio and Envoy contributor, to learn the basics about Service Mesh, what makes it great for Cloud Native Applications, and learn to get started!

Speakers
avatar for Venil Noronha

Venil Noronha

Member of Technical Staff, VMware
Venil Noronha is an engineer with the NSX Service Mesh team at VMware. He also contributes upstream to open source projects in the service mesh domain, like Istio and Envoy proxy. In the past, he has contributed to several open source projects including Kubernetes, Spring, and Go... Read More →



Wednesday August 21, 2019 12:20pm - 12:55pm
402
  • Session Slides Included Yes

2:25pm

Join Our Party: The Cloud Native Adventure Brigade - Bridget Kromhout & Zachary Deptawa, Microsoft
"In any team you need a tank, a healer, a damage dealer, someone with crowd control abilities, and another who knows iptables"

Complexity in our software installations increases over time; this is a law of physics (along with how “working in production” means “this will ideally last until the heat death of the universe”). Let’s talk about open source tools we can use for operable software on Kubernetes. Helm is a widely used package manager for applications deployed on Kubernetes. Draft streamlines the inner loop of local development and Brigade allows us to create event-driven pipelines. Duffle implements the Cloud Native Application Bundle spec to install and manage distributed apps for k8s and beyond, while Porter makes authoring such app bundles easier.

Code snippets and demos will add to this whirlwind overview of how to gather your party of adventurers; you’ll leave with a clear picture of how to operate your software in a Kubernetes ecosystem (and avoid being eaten by a grue).

Speakers
avatar for Zachary Deptawa

Zachary Deptawa

Cloud Advocate, Microsoft
Zachary is a Cloud Advocate at Microsoft with a focus on Linux (yes, really.) Before that, he's played roles from monitoring technician to system administrator and professional services consultant to solutions architect at startups (Sprout Social, ClearDATA) and larger orgs (Rackspace... Read More →
avatar for Bridget Kromhout

Bridget Kromhout

Principal Program Manager, Microsoft
Bridget Kromhout is a Principal Program Manager at Microsoft, focusing on the open source Kubernetes ecosystem. Her CS degree emphasis was in theory, but she now deals with the concrete (if 'cloud' can be considered tangible). After 15 years as an operations engineer, she traded being... Read More →


Wednesday August 21, 2019 2:25pm - 3:00pm
Sapphire L

2:25pm

Stop Calling Knative Serverless! - Doug Davis, IBM*
By now most people are familiar with what it means to be a serverless platform, features such as scale-to-zero, auto-scaling and source-to-build. And Knative certainly does all of that. But, by calling Knative a Serverless platform are we implying that PaaS or CaaS apps shouldn't share some of these same characteristics? I don't think so - so let's stop this charade! In this talk we'll go over what Knative is, and how we really should look at it as a new way to deploy any app to Kubernetes - not just functions.

Developers should focus on writing code, not managing infrastructure. With Knative we take a huge step forward towards abstracting the complexities of Kubernetes w/o giving up the advanced features we all want.

Speakers
avatar for Doug Davis

Doug Davis

OM Knative, IBM
Doug works in IBM's Hybrid Cloud division. He's been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker and Kubernetes. He's currently the OM for Knative, co-chairing the CNCF's Serverless... Read More →



Wednesday August 21, 2019 2:25pm - 3:00pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

3:15pm

Best Practices and Lessons Learned for Running Kubernetes on Bare-Metal at Scale - Cody Hill, Platform9*
Platform9 offers a SaaS hybrid cloud solution, managing +300 cloud regions & thousands of nodes for our users, globally. Our offering is built on top of Kubernetes on bare-metal. When running Kubernetes on a public cloud, the cloud providers take care of critical capabilities such as storage, Loadbalancers, DNS, Ingress, etc. But if you want to take advantage of K8s on your own bare-metal infrastructure, things get trickier. This talk dives into the challenges we needed to overcome to run production Kubernetes on bare-metal. We share best practices, design considerations & lessons learned to accelerate your journey to take advantage of K8s on bare-metal datacenters. We will also show a live demo- deploying a multi-master bare-metal Kubernetes cluster, configuring an ingress controller integrated with Let’s Encrypt, and a persistent storage backend. With these added to your bare-metal K8s cluster, it will be as powerful as running on public clouds, but with bare-metal performance!

Speakers
avatar for Cody Hill

Cody Hill

Director of Technology, Platform9
Cody Hill is Director of Technology at Platform9. Prior to joining Platform9, Cody Hill was the Lead Cloud Architect at General Electric, where he built an enormous private cloud based on VMware vCloud Director spanning North America, Europe, and Asia. With more than 10 years of IT... Read More →



Wednesday August 21, 2019 3:15pm - 3:50pm
Sapphire L
  • Session Slides Included Yes

3:15pm

Comparison of Current Service Mesh Architectures - Bruce Basil Mathews, Mirantis*
A service mesh provides visibility, traffic management, resiliency and security control for distributed application services. This presentation focuses on the differences between service meshes and service mesh components, including:

- Envoy
- Istio
- Conduit
- Linkerd
- Kong
- Aspen
- Consul

The presentation will compare and contrast container orchestrators, API gateways, and client-side libraries service mesh methodologies and provide recommendations for which method is best applied to satisfy the needs of different different workloads.

Speakers
avatar for Bruce Mathews

Bruce Mathews

Senior Solution Architect, Mirantis
Bruce has been a Senior Solutions Architect in the computer industry for forty-one years, working at multiple technology companies including Mirantis. Bruce has been involved with OpenStack since 2010 as a member of Hewlett-Packard’s Public Cloud team and was heavily involved with... Read More →



Wednesday August 21, 2019 3:15pm - 3:50pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

3:15pm

Workshop: Zero-to-Canary With Spinnaker - Nicholas Parks, Kenzan*
So you keep hearing about Spinnaker, and you want to try to do something but don't know where to get started? We have the Tutorial for you!

Instead of relying on a random Spinnaker 'HowTo' blog post on the internet, this three-hour tutorial session goes from creating a manageable Spinnaker instance to perform Canary Deployment on Kubernetes. At the beginning of the session, we use open source tools to automate the creation of a Containerized Continuous Delivery environment on GCP in under 30 minutes. We explore Spinnaker's integration with Google, Cloud Registry, Cloud Storage, PubSub and other GCP services.

During the rest of the course, students deploy a simple microservice with a simple pipeline and then evolve this simple pipeline to perform more complex actions. Finally, students build a functioning canary pipeline featuring Spinnaker's Automated Canary Analysis capabilities. The course finishes with a discussion of how open source delivers the cloud-native landscape.

Speakers
avatar for Nicholas Parks

Nicholas Parks

Cloud Architect, Kenzan
Nicholas is a Cloud Architect at Kenzan. He has worked in various industries spanning Defense, Intelligence, Law Enforcement, Airlines, retail, different healthcare, and telecommunications. Always worked in globally distributed solutions starting with data centers on-prem to global... Read More →



Wednesday August 21, 2019 3:15pm - 6:00pm
Aqua Salon E
  • Session Slides Included Yes

4:20pm

K8s-based API Gateway - Steve Flanders, Omnition*
Looking for an open-source, Cloud Native, API gateway designed specifically for Kubernetes? In this talk, you will learn about Ambassador, which does exactly this and is based on Lyft's Envoy proxy. You will see the features it provides as well as how to configure it.

Speakers
avatar for Steve Flanders

Steve Flanders

Director of Engineering, Splunk
Steve Flanders is the Head of Product and Experience at the Stealth Startup Omnition. He was previously the Global Engineering Manager for log analytics and data collection at VMware. Steve has an extensive background in software development, user experience, product design, and operational... Read More →



Wednesday August 21, 2019 4:20pm - 4:55pm
Aqua Salon C
  • Session Slides Included Yes
  • Session Recorded Yes

4:20pm

Kubernetes Housekeeping - Damini Satya Kammakomati, Salesforce*
One of the big challenges of running large scale distributed systems like Kubernetes is managing resources. The efficiency and long term operational readiness of such systems depends on how well the resource utilization is monitored and managed. Kubernetes provides a plethora of options and mechanisms to track and handle resources. However, like any other system, the best way to tune it is to know these options, mechanisms and more importantly understand them.

This session will explain various mechanisms available in Kubernetes to manage the resources. We will deep dive into concepts like Garbage Collection Controller, Kube Controller Manager, Eviction, and Kubelet Garbage Collection, providing details of how they work, how to configure them and what are the recommended settings.



Speakers
avatar for Damini Satya Kammakomati

Damini Satya Kammakomati

Software Engineer, Salesforce
Damini Satya is a software engineer at Salesforce building building tools for infrastructure automation internally. Previously, she was a speaker at GHC 2018 with a talk titled “Elsa, A conversational agent aimed at improving women’s mental health”, which garnered huge applause... Read More →



Wednesday August 21, 2019 4:20pm - 4:55pm
Sapphire L

4:20pm

Service Mush: Debugging Istio Deployments - Sandeep Parikh, Google*
So you’ve decided to deploy Istio to power-up your microservices. Now what do you do when things don’t work as expected? How do you debug traffic management and canary rollouts and what if traffic isn’t going to the intended destination? How come your metrics and telemetry aren’t showing up or specific signals are missing? In this session, we’ll take a deep dive into debugging Istio deployments using a few applied scenarios, and go through some of the tools you can add to your toolkit when debugging Istio deployments.

Speakers
avatar for Sandeep Parikh

Sandeep Parikh

Cloud Native Advocate, Google
Sandeep is a Cloud Native Advocate for Google Cloud, where he focuses on making it easier for developers and operators to adopt cloud native tools and practices, such as Kubernetes and Istio. Sandeep’s background is in software engineering and he's worked for Apple, MongoDB, Ravel... Read More →



Wednesday August 21, 2019 4:20pm - 4:55pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

5:10pm

The Enemy Within: Running Untrusted Code with gVisor - Ian Lewis, Google
Containers are a great way to isolate application resources but they can fall short when it comes to security isolation. How do you improve the security of your workloads without giving up the properties of containers that you've come to love? There are many approaches to sandboxing containers, such as virtual machines and unikernels, but which is right for you?
gVisor is a unique open-source sandbox runtime that allows you to run unmodified applications in containers with a higher level of isolation and low overhead. In this talk I will explore the container security model of gVisor and use cases for sandboxing containers. I will discuss various approaches and their tradeoffs before diving into the architecture of gVisor and how it differs from virtual machine based sandboxes. Finally, I will bring it all together with a demo of a minimal serverless platform using gVisor and Kubernetes.

Speakers
avatar for Ian Lewis

Ian Lewis

Developer Advocate, Google
Ian is a software engineer at Google and contributor to the gVisor project. Ian has had various developer and operations roles throughout his career and enjoys working in environments with diverse ways of thinking. Ian has been living in Tokyo since 2006 and is active in the open-source... Read More →


Wednesday August 21, 2019 5:10pm - 5:45pm
Sapphire L
 
Thursday, August 22
 

11:15am

Lessons Learned from Upgrading Kubernetes - Aaron Teague, Supergiant*
At our parent company, Qbox, we had many Kubernetes clusters that we upgraded from a pre-1.0 version to v1.5. Because of this, they did not fit the same configuration as v1.5 clusters newly created from standard provisioning tools like kubeadm or kops.

I was tasked with upgrading from v1.5 of Kubernetes to v1.13. With v1.5 being two years old in a rapidly expanding technology, replacing the pieces in a way that customers would not notice was no small order.

We successfully powered through this process and would like to share with the community the lessons we learned from doing so. When the options aren’t simply “build a new cluster,” finding a solution becomes key.

Speakers
avatar for Aaron Teague

Aaron Teague

Software Engineer, Supergiant
Aaron Teague is a Software Engineer with Qbox’s Supergiant team. He manages several Kubernetes clusters that host instances of Elasticsearch. He enjoys mentoring others, making complex problems palatable, and discovering those "aha!" moments. Before joining Qbox, he was a hobbyist... Read More →



Thursday August 22, 2019 11:15am - 11:50am
Sapphire L
  • Session Slides Included Yes

11:15am

Out of the Box Observability and Tracing in Kubernetes with Kong, Zipkin and Prometheus - Marco Palladino, Kong Inc.
In this hands-on session Marco Palladino, CTO of Kong, will demonstrate how to seamlessly collect observability and tracing metrics on Kubernetes by leveraging open-source technologies like Kong, Zipkin and Prometheus. As the number of services that we are creating and exposing on cloud-native platforms like Kubernetes increases over time, it's critical to be able to visualize traffic patterns and tracing bottlenecks in order to improve the reliability and availability of our services. In this session we will fire up the terminal and walk you through the steps required to enable observability with Kong and Kubernetes in just a few steps.

Speakers
avatar for Marco Palladino

Marco Palladino

CTO, Kong
Marco PalladinoCTO and Co-FounderMarco Palladino is an inventor, software developer and Internet entrepreneur based in San Francisco. As the CTO and co-founder of Kong, he is Kong’s co-author, responsible for the design and delivery of the company’s products, while also providing... Read More →


Thursday August 22, 2019 11:15am - 11:50am
Sapphire P
  • Session Recorded Yes

12:05pm

Deploy on Kubernetes for Pennies on a Dollar - Hemani Katyal, VMware*
With the rapid growth in popularity and adoption rate of container technology and Kubernetes the need for cost monitoring is increasing. Having a good cost accountant will help in providing insights for unanticipated costs accrued at the end of billing cycle and allowing the cluster owner in understanding how exactly the infrastructure’s budget is being distributed across teams.

In this presentation, we’ll talk in detail how Purser, an open source project provides resource and cost visibility for a Kubernetes cluster. We will focus on how Purser utilizes Kubernetes Custom Resource definitions (CRD) to support creation of “teams” for which Purser computes cost associated with them. Further we will demo and discuss on how these valuable insights will help make important budget-based decisions by understanding the expenditure trend of the teams.

Speakers
avatar for Hemani Katyal

Hemani Katyal

Member Technical Staff 2, VMware
Hemani is a passionate software engineer with around 4+ years of industry experience. Currently working as a Member of Technical Staff with VMware. She is one of the main contributors to K8s showback/chargeback OSS implementation by VMware. Prior to VMware, she was working with Red... Read More →



Thursday August 22, 2019 12:05pm - 12:40pm
Sapphire L
  • Session Slides Included Yes

12:05pm

The Importance of Continuous Regression for HW & SW Development: Improving Performance Over the Lifetime of a Product - Travis Lazar, Ampere Computing*
Listen to Travis Lazar from Ampere Computing - a high-performance arm-based (aarch64) microprocessor development company - talk about how innovative continuous testing techniques have driven rock-solid quality, compatibility, and stability to data-center class products. Through full automation and performance focused methodologies, Ampere is doing more with less, driving efficiency in HW/SW development to higher levels, and engaging with Open Source communities in new ways that benefit the entire industry.

In this talk, Travis will share details about Ampere’s continuous regression system: how it’s being used to analyze performance, spot problems, drive changes to open source code, and automatically generate tuning guides for various workloads through perf-backed analysis and reports. See how Ampere’s support costs are lowered, performance is continually improved across all products (past, present, future), and documentation is generated in real-time for new code contributions.

Speakers
avatar for Travis Lazar

Travis Lazar

Performance Engineer & Solutions Architect, Ampere Computing
Travis works for Ampere Computing out of the Portland, Oregon office. He is currently focusing on performance optimization, automated regression testing, and data analytics for Ampere's product line.



Thursday August 22, 2019 12:05pm - 12:40pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

2:10pm

Fine-grained Authorization in a Containerized World - Ashutosh Narkar, Styra Inc.*
Organizations use containerized workloads to build and deploy applications. Although diverse in nature these deployments must conform to company-wide constraints around cost, security, and performance. These evolving constraints affect the entire stack and hence enforcing them becomes difficult.
In this talk, we will introduce the Open Policy Agent (OPA), an open source, general-purpose policy engine which can be used to enforce fine-grained policies in any system and at any layer of the stack.
We will see examples of authoring security policies using OPA’s purpose-built, declarative language over JSON data gathered from Kubernetes.
OPA not only provides the ability to enforce organization-specific policies by leveraging security extension points in Docker and Kubernetes such as admission controllers but also meets strict latency and availability requirements.
We will demo how custom policies can be enforced on Kubernetes objects without modifying any Kubernetes components.

Speakers
avatar for Ash Narkar

Ash Narkar

Senior Software Engineer, Styra Inc
Ash Narkar is a maintainer of the Open Policy Agent project. Ash has over 5 years of experience working on large-scale distributed systems. Ash is a Senior Software Engineer at Styra, Inc. working on OPA development and integrations. Previously he was a Principal Engineer at Verizon... Read More →



Thursday August 22, 2019 2:10pm - 2:45pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

2:10pm

Kubernetes on the Edge - Mark Abrams, Rancher Labs*
Rancher Labs created K3s to solve a problem anyone who works with constrained resources understands: Kubernetes doesn't run in those environments. We removed alpha and optional features, converted others to dynamic add-ons, and replaced etcd with sqlite. The result is a single binary that works on x86 and Arm processors and lets you run Kubernetes workloads on hardware with as little as 512 MB of RAM.

We want to share K3s with as many people in the Kubernetes and Open Source community as we can. We've put together a live presentation to demonstrate a tiny slice of what people can do with K3s. It begins with a discussion of what K3s is and how it works, and then follows with a live demonstration of the software by installing it on a small (SBC) devices. With the basic cluster up and running, we will take a look at how to scale both services and the cluster itself. The presentation is very interactive and we anticipate lots of Q&A.

Speakers
avatar for Mark Abrams

Mark Abrams

Field Engineer, Rancher Labs
Mark Abrams is a Field Engineer with Rancher Labs. Mark is working alongside the Engineers at Rancher Labs to help evangelize, utilize and test the K3s open source project. Mark has presented and demoed work at the SUNYA Open Source Festival as well as presenting on various technical... Read More →



Thursday August 22, 2019 2:10pm - 2:45pm
Sapphire L
  • Session Slides Included Yes

3:00pm

Introduction to Test-kitchen and InSpec - Lance Albertson, OSU Open Source Lab*
Whether you’re using Chef, Puppet or Ansible, you’re going to need a set of tools which help enable you to develop and test your infrastructure. One set of tools that we use at the OSU Open Source Lab is test-kitchen coupled with InSpec. Test-kitchen provides a test harness to execute infrastructure code on one or more platforms in isolation. InSpec provides a way to ensure your infrastructure code passes tests and compliance in a way separate from your configuration management. Together, this provides a very powerful platform for developing infrastructure code and testing it as well.

This session will introduce attendees to both test-kitchen and InSpec, explain the various drivers and provisioners you can use, and also provide some real-world examples of how to use it with Chef, Puppet and Ansible.

Speakers
avatar for Lance Albertson

Lance Albertson

Director, OSU Open Source Lab
Lance Albertson is the Director for the Oregon State University Open Source Lab (OSUOSL) and has been involved with the Gentoo Linux project as a developer and package maintainer since 2003. The OSUOSL provides hosting for more than 160 projects, including those of worldwide leaders... Read More →



Thursday August 22, 2019 3:00pm - 3:35pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

3:00pm

Service Mesh Up and Running in 5 Minutes - Brian Redmond, Microsoft*
Service Mesh technology is super powerful and super complicated at the same time.

With a service mesh, we are able to add complex network routing, telemetry and reporting, TLS security, fault injection, and policy enforcement to distributed systems in Kubernetes.

However, the setup and configuration can be a daunting task. We are not only required to setup and configure the control plane, but we must also define various resources to support our specific application.

The goal of this lightening talk is to show how to gain value quickly from a Service Mesh with just a few steps. In just 5 minutes, we will go from nothing to rich Dashboards and "meshed" services!

Speakers
avatar for Brian Redmond

Brian Redmond

Cloud Architect, Microsoft
I am a Cloud Architect on the Azure Global Black Belt team at Microsoft. I focus on containers, microservices, and cloud native applications in the Azure cloud platform. I have been working in technology for over 20 years and have a mixed background from application development to... Read More →



Thursday August 22, 2019 3:00pm - 3:35pm
Sapphire L
  • Session Slides Included Yes

4:05pm

IPMI is Dead, Long Live Redfish - Cornec Bruno, HPE*
Redfish is an IPMI replacement standardized by the DMTF. It provides a RESTful API for server out of band management and a lightweight data model specification that is scalable, discoverable and extensible. (Cf: http://www.dmtf.org/standards/redfish). This presentation will start by detailing its role and the features it provides with examples. It will demonstrate the benefits it provides to system administrator by providing a standardized open interface for multiple servers, and also storage systems.

We will then cover various tools such as the DMTF ones and the python-redfish library (Cf: https://github.com/openstack/python-redfish) offering Redfish abstractions.

Finally, we'll show how to add CMDB support (with the Open Source iTop tool as an example) into a Software Defined Infrastructure.

Live or Recorded demos will be displayed to illustrate the different aspects.

Speakers
avatar for Bruno Cornec

Bruno Cornec

Open Source & Technology Strategist, HPE
Bruno Cornec has been managing various Unix systems since 1987 and Linux since 1993 (0.99pl14).Bruno first worked 8 years around Software Engineering and Configuration Management Systems in Unix environments.Since 1995, he is Open Source and Linux (OSL) Technology Strategist, Linux... Read More →



Thursday August 22, 2019 4:05pm - 4:40pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

4:05pm

It's Time to Jump on the Secure GitOps Bandwagon - Ricardo Aravena, Rakuten*
In the last year, Kubernetes GitOps has become more pervasive in many organizations helping them enhance CI/CD by removing manual kubectl commands, improving source code control, and keeping release versions consistent.

We will cross-check some of the more popular GitOps open-source tools such as Draft, Flux and Argo together with security considerations for real-world production environments. Which one could be more vulnerable and how would you harden them? How to securely plug them into serverless frameworks like Knative? What about building and verifying container images with open-source projects like Bazel, Kaniko, Grafeas, Notary, and Anchore? Can they leverage container isolation mechanisms like gVisor and Kata Containers?

By the end of the session, the audience will have a good understanding of the current state of the GitOps ecosystem in the open source world and how to leverage several tools to enhance, secure and increase agility in production environments.

Speakers
avatar for Ricardo Aravena

Ricardo Aravena

SRE Manager, Rakuten
Ricardo currently works at Rakuten as an SRE Manager, automating everything in containers using open source. He's a co-chair of the CNCF SIG-Runtime and Kata Containers project contributor. He has been working in tech for more than 20 years and comes from a diverse professional background... Read More →



Thursday August 22, 2019 4:05pm - 4:40pm
Sapphire L
  • Session Slides Included Yes

4:55pm

BoF: Istio Service Mesh Improvement - Lin Sun, IBM*
Istio is an open platform that provides a consistent way to connect, secure, control, and observe micro services across your service mesh. In this BOF session, Lin provides a quick update of the key features and improvement of the latest Istio and opened up for discussion on what pain points and experiences users have when adopting Istio or other service mesh platforms.

Speakers
avatar for Lin Sun

Lin Sun

Senior Technical Staff Member, IBM
Lin has been working on container and cloud-native since 2014 from Docker to Kubernetes to Service Mesh. She is currently an Istio maintainer, a member of the Istio steering committee and technical oversight committee. She is passionate about new technologies and loves to play with... Read More →



Thursday August 22, 2019 4:55pm - 5:30pm
Sapphire L
  • Session Slides Included Yes
 
Friday, August 23
 

11:30am

Network Boot in a Zero-Trust Environment - Stephano Cetola, Intel Corporation*
Network boot is commonly used for everything from booting thin clients to using IT automation for bare-metal provisioning. Unfortunately, most network boot infrastructure is based on outdated standards such as TFTP and PXE. This presents an issue when implementing a Zero Trust architecture, where security principles need to be implemented within the network perimeter.

This session introduces modern methods for securing network boot infrastructure, including UEFI Secure Boot and HTTPS Boot, and how they can be enabled with the right combination of firmware and server configuration.

Speakers
avatar for Stephano Cetola

Stephano Cetola

Open Source Program Manager, Intel
Stephano is an Open Source Program Manager at Intel contributing to TianoCore and CHIPSEC. His main focus is on community engagement and improving the developer experience. In his free time he enjoys exploring the thermal tolerances of various electronic circuits.



Friday August 23, 2019 11:30am - 12:05pm
Sapphire L
  • Session Slides Included Yes

12:20pm

Microservices with Ballerina: A Programming Language for Network Distributed Applications - Sameera Jayasoma, WSO2*
Ballerina is a programming language designed for network-distributed applications. One of its key objectives is to make providing and consuming services easier by baking concepts such as listeners, services, and endpoints as inherently concurrent first-class language constructs. Another important aspect of the language is the sequence diagram based graphical view which shows the most fundamental aspect of the semantics of a network distributed application. Ballerina language is pragmatic and intended for commercial adoption and provides familiarity for users of Java, C#, and JavaScript. While it looks like Java and other popular languages in some ways, it is very different from those in fundamental ways

In this session, Sameera Jayasoma, will discuss and demonstrate how Ballerina simplifies your microservices development. Also, he will show you how Ballerina is different, why it's different, and how those differences give Ballerina an unfair advantage when it comes to developing resilient, performant, and secure network services and applications.

Speakers
avatar for Sameera Jayasoma

Sameera Jayasoma

Senior Director, Platform Architecture, WSO2
Sameera is the lead architect and developer of Ballerina language compiler and runtime. Also he is the Director of Platform Architecture at WSO2. He is a member of WSO2’s architecture team that drives development and enhancement of overall WSO2 platform capabilities. He is also... Read More →



Friday August 23, 2019 12:20pm - 12:55pm
Sapphire L
  • Session Slides Included Yes

12:20pm

Telemetry: Industry Status, Challenges, and OSS Opportunities - Frank Brockners, Cisco*
Telemetry is the new buzzword in the industry these days. Key questions addressed in the talk: What is telemetry at the network, application, and business level? What is the intersection of open-source tool/reference-implementation development and standardization? What are the opportunities for the industry, standards organizations like the IETF, W3C, and open source efforts like OpenTracing, OpenCensus, or Jaeger with regards to evolving telemetry?

Speakers
avatar for Frank Brockners

Frank Brockners

Distinguished Engineer, Cisco
Frank Brockners is Distinguished Engineer in Cisco's Chief Technology and Architecture Office, driving software and architecture development for software defined devices with a strong focus on telemetry and AI/ML. Frank is active in standards and open source efforts related to analytics... Read More →



Friday August 23, 2019 12:20pm - 12:55pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

2:25pm

Automating REST Microservices with Ride - Ted Casey, Adobe, Inc.*
Thoughts of system outages in multi-component and multi-environment REST architectures keep even hardened engineers and managers up at night. Managing the end-to-end validation to guard against this can be daunting. A myriad of solutions exist to target and test different areas within this ecosystem, many times requiring different configuration and code syntax.

The Ride framework provides an SDK building REST-based micro-services tests across functional testing, dynamic data generation (from JSON schema), performance, and fuzzing. It does all this through one syntax and one set of shared configuration files.
Ride tests are translatable to an unlimited number of environments and can use arbitrary json schema to define and generate data to test flows across the entire functional map of the system.

Ride is open source and licensed through the Apache2 license.

https://github.com/adobe/ride/blob/develop/README.md

Speakers
TC

Ted Casey

Sr. Software Engineer, Adobe, inc.
Ted Casey is a Senior Software Engineer and 19 year veteran of Adobe Inc. He is the primary architect and driver behind Ride, an open-source REST automation framework used in the automation of Adobe's cloud services.He has worked on various products Adobe, among them FreeHand, Flash... Read More →


Ride pdf

Friday August 23, 2019 2:25pm - 3:00pm
Sapphire L
  • Session Slides Included Yes

2:25pm

Chameleon: Expanding Open-Source Ambari for HPC - Jieun Choi, Korea Institute of Science and Technology Information*
High performance computing (HPC) community is increasingly demanding big data processing beyond traditional simulation-based computation. Hadoop ecosystem has a roadmap that includes HPC support including GPU, FPGA. With HPC and Big-data converging into one huge ecosystem, we launched the Chameleon project to develop a HPC based big-data platform operation management system.
Chameleon was developed based on Apache Ambari, which is well-known Hadoop management system and extended to support Lustre filesystem management, which is widely used in HPC community for massive storage and HPC resource monitoring including GPU and Infiniband. Chameleon also added advanced YARN app monitoring functionalities based on Linux performance tools so that rich linux performance tools from Linux ecosystem can be dynamically used for YARN app monitoring. Finally, Chameleon has dynamic dashboard for Hadoop and HPC which streamlines HPC based Big-data platform operation and management.

Speakers
JC

Jieun Choi

Researcher, Korea Institute of Science and Technology Information
Jieun Choi is a researcher in National Institute of Supercomputing and Networking (NISN) at KISTI (Korea Institute of Science and Technology Information). She received her B.S. and M.S. degree from Sookmyung Women's University in 2014 and 2016, respectively. Her research interests... Read More →



Friday August 23, 2019 2:25pm - 3:00pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

3:15pm

Create your Own MySQL-as-a-Service that Runs Anywhere Using Kubernetes Operators - Sachin Manpathak, Platform9*
Kubernetes offers a unique opportunity for organizations to build a production-grade RDS-like service running on their own infrastructure: either on-premises or in the public cloud. Using Kubernetes Operators (along with its built-in HA, scaling and monitoring), you can now enable a DB-as-a-Service solution on any environment - to avoid cloud lock-in and save costs.

This talk covers the key considerations for choosing Kubernetes as the backbone for your relational database service, and how to get your MySQL-as-a-Service up and running using open source tools and Operators for the easy deployment and management of MySQL instances that can run anywhere.

We share our journey moving production workloads from AWS RDS to our own MySQL Kubernetes service running on our private cloud. We discuss the architecture design, challenges we encountered, best practices, and the open source tools we used (along with code samples) -- so you could implement your own DB service running on Kubernetes.

Speakers
avatar for Sachin Manpathak

Sachin Manpathak

Technical Lead, Platform9
Sachin is a Kubernetes Tech Lead at Platform9. After graduating from UT, Austin he started his career coding tools for making VM management easier @VMware. He then moved on to simplifying Openstack delivered as a service for @Platform9. These days, he is muddying up the Kubernetes... Read More →



Friday August 23, 2019 3:15pm - 3:50pm
Sapphire P
  • Session Slides Included Yes
  • Session Recorded Yes

3:15pm

Monitoring Java Applications with Prometheus and Grafana - Justin Reock, Rogue Wave Software*
Learn how to modernize your Java application monitoring and dashboarding with Prometheus and Grafana. There's a lot of information out there when it comes to monitoring a Kubernetes cluster with Prometheus, but, in the modern enterprise landscape, applications are still what matters. Learn how to leverage Prometheus and Grafana to build slick, modern monitoring dashboards and threshold logic for Java applications.

Speakers
avatar for Justin Reock

Justin Reock

Chief Architect, OpenLogic by Perforce
Justin has over 20 years’ experience working in various software roles and is an outspoken free software evangelist, delivering enterprise solutions and community education on databases, integration work, architecture, and technical leadership. He is currently the Chief Architect... Read More →



Friday August 23, 2019 3:15pm - 3:50pm
Sapphire L
  • Session Slides Included Yes